path: root/dan/sk-testvm.yml

---
- name: Basic Setup
  hosts: sk-testvm
  roles:
  - role: apt-repo/base
  - role: core/base
  - role: core/sshd/base
  - role: core/zsh
  - role: core/ntp

- name: Payload Setup
  hosts: sk-testvm
  vars:
    # acme_client: uacme
    # acme_client: acmetool
    # cert_provider: "{{ acme_client }}"
    # cert_provider: static
    # cert_provider: selfsigned
    cert_provider: ownca
  roles:
  - role: apt-repo/spreadspace
  - role: kubernetes/base
  - role: kubernetes/standalone/base
  - role: "x509/{{ cert_provider }}/base"
  - role: nginx/base
  - role: nginx/vhost
    nginx_vhost:
      default: yes
      name: nosuchsite
      template: generic
      tls:
        certificate_provider: "{{ cert_provider }}"
        hsts: no
      hostnames:
      - testvm.elev8.at
      locations:
        '/':
          root: /var/www/default
          index: index.html
    static_cert_config: "{{ static_cert_config__default }}"
    selfsigned_cert_config: "{{ selfsigned_cert_config__default }}"
    ownca_cert_config: "{{ ownca_cert_config__default }}"
  - role: nginx/vhost
    nginx_vhost:
      name: test
      template: generic
      tls:
        certificate_provider: "{{ cert_provider }}"
        hsts: no
      hostnames:
      - test.spreadspace.org
      - test.spreadspace.com
      - test.spreadspace.net
      - test.spreadspace.systems
      locations:
        '/':
          root: /var/www/test
          index: index.html
    static_cert_config: "{{ static_cert_config__test }}"
    selfsigned_cert_config: "{{ selfsigned_cert_config__test }}"
    ownca_cert_config: "{{ ownca_cert_config__test }}"
  # - role: apps/mumble
  #   mumble_version: v1.4.274-4
  #   mumble_instance: spreadspace
  #   mumble_hostnames:
  #   - test.spreadspace.org
  #   - test.spreadspace.com
  #   - test.spreadspace.net
  #   - test.spreadspace.systems
  #   mumble_superuser_password: "very-secret"
  #   mumble_config_options:
  #     bonjour: false
  #     sslCiphers: "ECDHE+AESGCM:DHE+AESGCM:ECDHE+AES256:DHE+AES256:ECDHE+AES128:DHE+AES128:!RSA:!ADH:!AECDH:!MD5"
  #     welcometext: "Welcome to the spreadspace Mumble Test-Server"
  #     rememberchannel: true
  #   mumble_tls:
  #     certificate_provider: "{{ cert_provider }}"
  # - role: apps/coturn
  #   coturn_version: 4.6.2-r4
  #   coturn_realm: spreadspace
  #   coturn_hostnames:
  #   - test.spreadspace.org
  #   - test.spreadspace.com
  #   - test.spreadspace.net
  #   - test.spreadspace.systems
  #   coturn_auth_secret: "somewhat-secret"
  #   coturn_tls:
  #     certificate_provider: "{{ cert_provider }}"
  post_tasks:
  - name: make sure document root directories exist
    loop:
    - test
    - default
    file:
      path: "/var/www/{{ item }}"
      state: directory

  - name: install index.html for default server
    copy:
      dest: /var/www/default/index.html
      content: |
        <html>
          <head>
            <title>No Such Site</title>
          </head>
          <body style="font-family: Helvetica, Arial, Sans-Serif; color: white; background: black;">
            <div style="text-align: center; margin-top: 4em; margin-left:auto; margin-right:auto;">
              <h2 style="">You have reached testvm.elev8.at, nothing to see here.</h2>
            </div>
          </body>
        </html>


  - name: install index.html for test server
    copy:
      dest: /var/www/test/index.html
      content: |
        <html>
          <head>
            <title>This is Test</title>
          </head>
          <body style="font-family: Helvetica, Arial, Sans-Serif; color: white; background: black;">
            <div style="text-align: center; margin-top: 4em; margin-left:auto; margin-right:auto;">
              <h2 style="">If you can read this the test was successful.</h2>
            </div>
          </body>
        </html>